I have had this SRV record working just fine for the longest time now and all the sudden it doesn’t work.
Type: SRV
Service: _minecraft
Protocol: TCP
Name: mc
TTL: Auto
Priority: 0
Weight: 5
Port: 25565
Target <my public IP>
This has worked for a year or two. It worked just fine earlier today. I went from Flexible SSL to Full and checked “Always use HTTPS” in Edge Certificates and then it just stopped working. I changed those back to their previous settings for testing, but it still stopped working.
If I nmap the port internally, it is open. If I nmap the port externally using my public IP, it is open. But when I nmap the port through CloudFlare, it is filtered.
It may be time for me to stop relying on CloudFlare and get a proper DNS provider, but I’d really like to understand how this stopped working and how to get it working again.
Is the record correctly returned if you query the DNS server? If so (and I expect that to be, since Cloudflare is a proper DNS provider, one of if not the best available) that is everything Cloudflare is doing with that IP. It’s not proxied.
I have replaced the following for privacy reasons:
My domain is: domain.com
My public IP is: 10.0.0.1
The server's internal IP is: 192.168.1.20
Running nmap -p 25565 192.168.1.20 returns:
PORT STATE SERVICE
25565/tcp open minecraft
Running nmap -p 25565 10.0.0.1 returns:
PORT STATE SERVICE
25565/tcp open minecraft
Running nmap -p 25565 mc.domain.com returns:
PORT STATE SERVICE
25565/tcp filtered minecraft
Now as far as querying the DNS server, I have had no luck. But to be fair, most of my records are not returned when running nslookup -q=A domain.com dahlia.ns.cloudflare.com so I’m not sure how I would check.
What I do know is that the issue exists at cloudflare as I’m able to get inside my network just fine on that port. It’s certainly something I have done, but I am dumbfounded as to what I have done.